Every supported desktop version of Windows is affected by the first issue, from 32-bit Windows XP SP2 up to 64-bit Windows 7. None of the server versions are listed. The bug could lead to remote code execution but is listed as "Important" rather than "Critical," indicating that there is some default mitigating factor.

The Office vulnerability appears to affect every supported version of Office and some ancillary products, including the Mac versions of Office, the Excel viewer and SharePoint Server. It too could lead to remote code execution but is rated "Important."